ITS  has been dealing with a rash of malicious phishing e-mail lately – messages designed to get you to reveal your Washburn e-mail password.  These come in several forms, most common lately are messages directing you to fake login websites.  The websites may be well designed and use actual Washburn logos and graphics.

 

Individual messages vary widely and may be sent to as few as 20 individual users.  Consequently asking you to be on the alert for a specific message may not be particularly helpful.  You should, however, be aware that Washburn students, faculty, and staff are being targeted to attempt to gain your credentials.  Be wary of any e-mails or links to websites asking you to enter your Washburn e-mail address and password.

 

If you ever have questions about an e-mail, you can forward it to [email protected] or call 785-670-3000 and ask ITS to validate it for you.  In the meantime we are working with service providers to block malicious messages and sites as quickly as possible.  Please contact us as well if you are concerned that you may have responded to such a message, we’ll be happy to help you.

 

A couple of examples of such malicious messages are included below – note in particular that these do not go to sites with “washburn.edu” in the web address:

 

From: [email protected] [mailto:rc540395@{redacted}.edu]

Sent: Saturday, September 13, 2014 5:20 PM

Subject: New mail

 

You have an incoming message from support click [http://www.[redacted]]survey.com/f/693973/170a/]http://www.[REDACTED]]survey.com/f/693973/170a/ to read

 

 

From: [REDACTED], Andrew

Sent: Monday, September 15, 2014 11:15 AM

To: [REDACTED], Andrew

Subject:

 

 

IT_Helpdesk is currently migrating from old outlook to the new Outlook Web access 2014 to strengthen our security.  You need to update your account immediately for activation. Click the website below for activation:

 

Click Here<[http://www.[redacted].ro/matei/-ee43/owa/index.htm]http://www.[REDACTED].ro/matei/-ee43/owa/index.htm>

 

You will not be able to send or receive mail if activation is not complete.

 

IT Message Center.

 

CONFIDENTIALITY NOTICE: This communication and any attachments may contain confidential or privileged information for the use by the designated recipient(s) named above.   If you are not the intended recipient, you are hereby notified that you have received this communication in error and that any review, disclosure, dissemination, distribution or copying of it or the attachments is strictly prohibited.  If you have received this communication in error, please contact the sender  and destroy all copies of the communication and attachments.  Thank you. MSG:104-123

 

 

 

Kevin Halgren

Assistant Director – ITS Systems and Network Services &

IT Security Officer